Le sextidi 16 messidor, an CCXXV, Reimar Döffinger a écrit : > From a security standpoint, I believe any array and anything that is > more than a handful bytes ideally should not be on the stack, if the > added complexity is minimal.
If you change that into "a handful of kilo-octets", then for a project like FFmpeg (which is not a monster like a Gui toolkit but neither meant for embedded systems with tiny limits) I agree. But "a handful bytes", I consider the added security to be the same level as stopping people at the entrances of a mall to have a passing glance at their handbag: pure theater. The wasted time could be more efficiently be used to other security-related tasks. Reimplementing FFmpeg in Rust for example. Regards, -- Nicolas George
signature.asc
Description: Digital signature
_______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org http://ffmpeg.org/mailman/listinfo/ffmpeg-devel
